Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2014-3416
Description:uPortal before 4.0.13.1 does not properly check the MANAGE permissions, which allows remote authenticated users to manage arbitrary portlets by leveraging the SUBSCRIBE permission for the portlet-admin portlet.
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2014-3416




© 1998-2024 E-Soft Inc. All rights reserved.